Kerby Ldap Backend
1 CVEs
product
Monthly
An LDAP Injection vulnerability exists in the LdapIdentityBackend of Apache Kerby before 2.0.3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Apache
Code Injection
Kerby Ldap Backend
NVD
CVSS 3.1
9.8
EPSS
1.5%
CVE-2023-25613
Maven
EPSS 1%
CVSS 9.8
CRITICAL
PATCH
Act Now
An LDAP Injection vulnerability exists in the LdapIdentityBackend of Apache Kerby before 2.0.3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Apache
Code Injection
Kerby Ldap Backend
NVD